I want to ensure that no one can go through the checkout process without https. How can I redirect anything that starts with /checktout (i.e. example.com/checkout & example.com/checkout/process) to https if it's not.

Vice versa, I don't want any page to be able to be accessed through https unless it has /checkout. So anything else should be redirected to http.